DV SSL/TLS Certificate for jbsantos.com

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the jbsantos.com DV SSL/TLS Certificate

This certificate with serial number 06:c7:da:ed:4d:60:ce:49:3f:e5:44:8d:48:47:79:68:28:3d for jbsantos.com was issued on by Let's Encrypt.

With 5 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for jbsantos.com provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:c7:da:ed:4d:60:ce:49:3f:e5:44:8d:48:47:79:68:28:3d
Serial Number (int): 590680910454680104071290296063399861692477
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: cf:e1:1d:6b:0a:a8:49:2b:2a:83:a2:85:af:26:2a:dd:6f:6d:2c:d5
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): d2:f6:90:ec:4d:55:4b:4d:32:80:16:d8:43:21:8f:24:d8:d2:f2:2e
Fingerprint (SHA-256): de:7d:71:47:7e:b9:9c:34:96:c7:5d:96:3f:80:b3:da:50:bd:54:c9:de:c4:8b:31:ef:85:2b:03:88:96:40:7c

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/62.crl

Check the revocation status for certificate jbsantos.com
5
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for jbsantos.com

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for jbsantos.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 590680910454680104071290296063399861692477
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-22 13:13:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-20 13:13:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jbsantos.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 682144639725357021385955394272682659934626937574557038362628022191835270578562081411074203838020582912192079546596215201894209077064106504672335749450521912639714887754748916611480654962775094457415094630000993733315696689922373798037233058770536060695883457032607648420763218824860315690196457843576486183269569923095948903209674475660817346584281207144233041270223356367878924352155790407788305110809761877660864259211860310314213092197701414064589543910253239481228871211670223611151086329972417228278473115844990367218610943302810279253225507667147968423829591863028629668815168856226635453712748516755277816669433966890364418256003143921694702447103615618974434296671112734231325802217803821707658408984289197809128501341678903687559509104545663917175313745001882120141041183751241027088416948700064657329173354099466463457412119475867539719137552316619116016899194118370748940995589985362859724863536102782179348996345839506073421246431488232814400234278748999338964186362465681251683476218405796924822709543595573189752830268747703761823244799637178382975032322181741519038957530144000602792459185089413777186086446749100015488175592896805789054244182581826850365715762948106542920560316085120371009202023744132699360288725217
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cfe11d6b0aa8492b2a83a285af262add6f6d2cd5
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jbsantos.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1234.pt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jbsantos.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.1234.pt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.1234.pt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/62.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000019797fbb75c0000040300483046022100907b1edbbed6b5eccff2fa2b88c93fc052219be295a45ff48c2b3d650e0c3488022100924fcfcbad73d80cee22bc8b3bb6b3da28213a64aa413384860a776dafba2c170077000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa340000019797fbb7430000040300483046022100ba5a91859f68aef3e771ee42cbcb54768f27ce7c204abeb016c5465dbca15ab3022100990044df455a646a7b31806fece5b48a4b7b43e34f97be1749d8a7ac5f025719
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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